434 matches found
CVE-2020-12847
Pydio Cells 2.0.4 web application offers an administrative console named “Cells Console” that is available to users with an administrator role. This console provides an administrator user with the possibility of changing several settings, including the application’s mailer configuration. It is...
CVE-2020-12849
Pydio Cells 2.0.4 allows any user to upload a profile image to the web application, including standard and shared user roles. These profile pictures can later be accessed directly with the generated URL by any unauthenticated or authenticated user...
CVE-2020-12850
The following vulnerability applies only to the Pydio Cells Enterprise OVF version 2.0.4. Prior versions of the Pydio Cells Enterprise OVF such as version 2.0.3 have a looser policy restriction allowing the “pydio” user to execute any privileged command using sudo. In version 2.0.4 of the...
CVE-2022-23458
Toast UI Grid is a component to display and edit data. Versions prior to 4.21.3 are vulnerable to cross-site scripting attacks when pasting specially crafted content into editable cells. This issue was fixed in version 4.21.3. There are no known workarounds...
CVE-2019-12903
Pydio Cells before 1.5.0, when supplied with a Name field in an unexpected Unicode format, fails to handle this and includes the database column/table name as pert of the error message, exposing sensitive information...
CVE-2019-12901
Pydio Cells before 1.5.0 fails to neutralize '../' elements, allowing an attacker with minimum privilege to Upload files to, and Delete files/folders from, an unprivileged directory, leading to Privilege escalation...
CVE-2019-12902
Pydio Cells before 1.5.0 does incomplete cleanup of a user's data upon deletion. This allows a new user, holding the same User ID as a deleted user, to restore the deleted user's data...
CVE-2025-12067
The Table Field Add-on for ACF and SCF plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Table Cell Content in all versions up to, and including, 1.3.30 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
PT-2026-25333
Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.24.0 Description FreeRDP is a free implementation of the Remote Desktop Protocol. A client-side heap out-of-bounds read/write issue exists in FreeRDP's bitmap cache subsystem. This is due to an incorrect boundary...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56781)
powerpc/prominit: missing powermac size-cells. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504722; scriptversion"1.2";...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990268)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990268 advisory. In the Linux kernel, the following vulnerability has been resolved: powerpc/prominit: Fixup missing powermac size-cells On some powermacs escc nodes are missing...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990058)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990058 advisory. In the Linux kernel, the following vulnerability has been resolved: powerpc/prominit: Fixup missing powermac size-cells On some powermacs escc nodes are missing...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990275)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990275 advisory. In the Linux kernel, the following vulnerability has been resolved: MIPS: Loongson64: DTS: Really fix PCIe port nodes for ls7a Fix the dtc warnings:...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990070)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990070 advisory. In the Linux kernel, the following vulnerability has been resolved: MIPS: Loongson64: DTS: Really fix PCIe port nodes for ls7a Fix the dtc warnings:...
EUVD-2020-5133
Malware in sbrugna...
EUVD-2010-5299
Malware in sbrugna...
EUVD-2018-7621
Malware in sbrugna...
EUVD-2019-4480
Malware in sbrugna...
EUVD-2020-5134
Malware in sbrugna...
EUVD-2017-9093
Malware in sbrugna...